Hi Guilhem, Guilhem Moulin <guil...@debian.org> (2019-08-22): > Package: release.debian.org > Severity: normal > Tags: buster > User: release.debian....@packages.debian.org > Usertags: pu > > Dear release team, > > Per RFC 8555 sec 6.3 the Let's Encrypt folks are deprecating > unauthenticated GETs from their v2 API. Support for these requests will > be removed on *Nov 01 2019* (so likely between Debian 10.1 and 10.2) [0]. > > lacme uses the v2 API by default since 0.5, and removing support for > unauthenticated GETs means that applying for certificate issuance will > stop working. Replacing GETs with POST-as-GETs is trivial (debdiff > attached), and I'd like to fix that in Buster via s-p-u. > > (0.6 from Sid is not affected, and neither is 0.2 from Stretch as the > latter supports only the v1 API.)
That seems like a welcome change indeed but I'm not entirely sure we're accepting pu requests that have no matching bug reports against the affected package; admittedly, it's been a while since I've last handled pu requests, so I need to get my memory refreshed a little… I'll let someone else comment on that point, to ensure I'm not making you jump through hoops needlessly… Cheers, -- Cyril Brulebois (k...@debian.org) <https://debamax.com/> D-I release manager -- Release team member -- Freelance Consultant
signature.asc
Description: PGP signature
